tabarok Platform Privacy Notice
This page describes what data we collect when you use tabarok and how we keep that information protected. We collect personal information—your name, email address, government identification, payment details, and betting history—to operate our sportsbook and casino platform, verify your identity for compliance, process deposits and withdrawals, and investigate disputes. Our data handling follows privacy principles: we collect only what is necessary, use your data only for stated purposes, and do not sell your information to third parties.
Our servers and payment processors may sit outside your jurisdiction. When you deposit via DANA, e-wallet, mobile banking, or bank transfer (local payment, online payment, e-wallet, mobile banking), those payment institutions hold and process your financial data according to their own privacy policies. We do not control their security; we rely on their compliance with Indonesian and international banking standards. Your account data on tabarok—login credentials, betting history, balance—remains encrypted and access-controlled within our infrastructure.
You have rights regarding your data: access, correction, deletion (where legally permitted), and portability. Contact us through your account dashboard to exercise these rights. This notice explains our practices in detail.
What data we collect on tabarok
We collect information in several categories. During account registration, we require your email address and a password you create. We use your email to send account notifications (login alerts, deposit confirmations, withdrawal status). We never share your email with advertisers or use it for marketing without your explicit consent.
For deposit and withdrawal eligibility, we collect your legal name, date of birth, and government-issued identification (KTP, passport, or equivalent). We store these securely and use them only for Know Your Customer (KYC) verification—a regulatory requirement to prevent fraud, money-laundering, and unauthorized access. Our compliance team reviews your documents and confirms your identity. Once verified, your ID image is encrypted and retained for audit purposes; we do not use it for any other function.
When you deposit funds, we collect payment information: your DANA wallet number, e-wallet account details, mobile banking ID, or bank account and virtual account number (VA). We do not store your complete card numbers or passwords. Payment processors (local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet) retain the full financial data; we store only transaction references needed to track deposits and withdrawals.
Your betting activity is logged: every wager you place, every market you view, every game you play, and every result you receive. We retain this data for settlement disputes, fraud investigation, and audit compliance. You can view your complete betting history in your account dashboard anytime.
- Account data
- Email, password hash, legal name, date of birth. Used for login, identity verification, and account recovery.
- Identity documents
- Government ID, address proof. Encrypted and used only for KYC compliance; retained per regulatory requirement.
- Payment data
- Payment method identifiers (e.g., mobile banking wallet, local payment number, VA code). Processed by payment institutions; we store transaction references only.
- Betting history
- Wagers placed, matches viewed, game plays, settlement results. Retained indefinitely for audit, dispute resolution, and fraud detection.
- Device and IP data
- Your device type, operating system, IP address, browser type. Collected for security, fraud prevention, and platform optimization.
How we use your data on tabarok
Your data serves specific, legitimate functions. We use your email and password to authenticate your account—to ensure only you can access your balance and betting history. We use your identity documents to comply with financial regulations; government and regulatory bodies may request verification records, and we provide them only under legal authority. We use payment information to process deposits and withdrawals and to detect fraud (unusual transaction patterns, mismatches between your verified identity and payment source).
Your betting history informs our dispute resolution process. If you claim a bet settlement was incorrect, we review the historical record against the match outcome and our game logic. We use aggregate, anonymized betting data to improve our platform—analyzing which markets attract users, which times see peak activity, which games experience technical issues. This analysis never involves your personal identity.
We do not use your data for marketing, advertising, or promotional outreach without your explicit opt-in. We do not sell your information to third parties. We do not share your betting history with other users or the public. Your data remains confidential within our organization and shared only with payment processors and regulatory authorities where legally required.
Third parties and data processors
Payment institutions (online payment, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking) receive your financial information directly when you deposit or withdraw. We do not control their privacy practices; they are governed by Indonesian banking regulations and their own privacy policies. We recommend reviewing those policies if you have concerns about payment-processor data handling.
We use cloud infrastructure providers to host our servers and databases. These providers are contractually bound to maintain confidentiality and implement standard security practices. Our servers may be geographically distributed; your data may be replicated across multiple data centers for redundancy and backup. This redundancy protects against data loss but means your information may travel outside Indonesia.
We do not share your personal data with advertising networks, data brokers, or marketing firms. We do not use tracking cookies to follow your behavior across other websites. We use analytics tools (Google Analytics or similar) to measure platform traffic and user behavior patterns; these tools collect anonymized data and do not identify you personally.
We collect data necessary to operate, protect, and comply with regulation—not to monetize your attention or behavior.
Your rights and our tabarok obligations
You have the right to access your personal data. Log into your tabarok account and view your profile, identity documents on file, betting history, and balance. You can download your complete transaction record anytime. You have the right to correct inaccurate information—if your name is misspelled or your address is outdated, contact support and we will update it. You have the right to request data deletion, though we may retain certain information (identity documents, transaction history) if required by law or for dispute resolution.
You can request a copy of all your personal data in a portable, machine-readable format (called data portability). This allows you to transfer your information to another service if you choose to leave tabarok. Contact our support team through your account dashboard; we will compile your data export and deliver it within a reasonable timeframe.
If you believe we have mishandled your data or violated your privacy rights, contact us immediately. We investigate complaints and will explain our practices or correct errors. If you remain unsatisfied, you have the right to lodge a complaint with Indonesia's data protection authority or your local privacy regulator.
Security practices and encryption
We encrypt data in transit (using HTTPS) and at rest (using industry-standard encryption algorithms). Your password is hashed—we store a mathematical derivative, not the original password itself. This means even our staff cannot see your actual password. When you reset your password, we send a time-limited reset link to your email; you must click it and create a new password before the link expires.
We implement access controls: only authorized staff can view sensitive data (identity documents, payment details), and their access is logged and audited. We conduct regular security assessments and penetration testing to identify vulnerabilities. If we discover a breach or unauthorized access, we notify affected users and authorities as required by law.
Two-factor authentication (2FA) adds an extra security layer. Once enabled, each login requires a verification code sent to your phone or email. We recommend enabling 2FA immediately after account creation, especially before making large withdrawals.
Cookies and tracking on tabarok
We use cookies—small files stored on your device—to maintain your login session and remember your preferences (e.g., language, theme). These are functional cookies necessary for tabarok to operate. You can disable cookies in your browser settings, but doing so may prevent tabarok from functioning properly.
We do not use cookies for advertising, tracking your behavior across other websites, or profiling. Third-party analytics tools (e.g., Google Analytics) may place cookies to measure platform traffic; these are anonymized and do not identify you personally. If you prefer not to be tracked by analytics, you can install browser extensions that block these tools.
Data retention and deletion
We retain account data for the duration of your membership. After you close your account, we retain identity documents and transaction history for a minimum of seven years to comply with financial audit requirements. We delete your password, email preferences, and non-essential profile data within ninety days of closure. Betting history remains available upon request for dispute resolution but is not actively maintained after your account closure.
If you request data deletion and no legal hold applies, we delete your information within thirty days. However, we cannot delete information required by law (identity verification documents, transaction records for tax or anti-money-laundering compliance). We will explain any retention necessity if you request deletion.
Jurisdiction and international data transfer
tabarok operates from servers that may be located outside Indonesia. When you use our platform, your data is transmitted to and processed in these external locations. By using tabarok, you consent to this international data transfer. We take reasonable steps to ensure data protection regardless of server location, but we acknowledge that data protection laws vary by country. If you are uncomfortable with international data transfer, you should not use tabarok.
We comply with Indonesian data protection regulations and international best practices. We do not intentionally transfer data to jurisdictions with weaker privacy protections, but we cannot guarantee the same legal protections apply everywhere your data is processed.
Contact and dispute resolution
If you have privacy questions or concerns, contact us through your tabarok account dashboard. Select "Support," describe your privacy concern, and our team will respond within two business days. For data access, correction, or deletion requests, provide specific details (the data you want to access, what needs correction, or why you want deletion). We will fulfill legitimate requests within thirty days.
If you believe we have violated your privacy rights, we encourage you to contact us first. If our response is unsatisfactory, you may file a complaint with Indonesia's data protection authority or your local privacy regulator. We cooperate with regulatory investigations and provide requested documentation.